Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\aw_p_q_o_v_.exe' = '%TEMP%\aw_p_q_o_v_.exe:*:Enabled:aw_p_q_o_v...
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\aw_p_q_o_v_.exe" "aw_p_q_o_v_.exe" ENABLE
- aw_p_q_o_v_.exe
- %TEMP%\aw_p_q_o_v_.exe
- %TEMP%\InstallRemove.dat
- %TEMP%\dw.log
- %TEMP%\2AF12.dmp
- <Полный путь к файлу>
- %TEMP%\aw_p_q_o_v_.exe
- 'ma####5522.ddns.net':5552
- DNS ASK ma####5522.ddns.net
- '%TEMP%\aw_p_q_o_v_.exe'
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 484